-
Notifications
You must be signed in to change notification settings - Fork 1
/
tls.go
89 lines (81 loc) · 2.54 KB
/
tls.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
package tls
import (
"crypto/x509"
"fmt"
"time"
"github.com/elmasy-com/elmasy/pkg/protocols/tls/ciphersuite"
"github.com/elmasy-com/elmasy/pkg/protocols/tls/ssl30"
"github.com/elmasy-com/elmasy/pkg/protocols/tls/tls10"
"github.com/elmasy-com/elmasy/pkg/protocols/tls/tls11"
"github.com/elmasy-com/elmasy/pkg/protocols/tls/tls12"
"github.com/elmasy-com/elmasy/pkg/protocols/tls/tls13"
)
type TLS struct {
Supported bool
Certificates []x509.Certificate
DefaultCipher ciphersuite.CipherSuite
Ciphers []ciphersuite.CipherSuite
}
func Scan(version, network, ip, port string, timeout time.Duration, servername string) (TLS, error) {
switch version {
case "ssl30":
r, err := ssl30.Scan(network, ip, port, timeout)
return TLS(r), err
case "tls10":
r, err := tls10.Scan(network, ip, port, timeout, servername)
return TLS(r), err
case "tls11":
r, err := tls11.Scan(network, ip, port, timeout, servername)
return TLS(r), err
case "tls12":
r, err := tls12.Scan(network, ip, port, timeout, servername)
return TLS(r), err
case "tls13":
r, err := tls13.Scan(network, ip, port, timeout, servername)
return TLS(r), err
default:
return TLS{}, fmt.Errorf("invalid version: %s", version)
}
}
func Handshake(version, network, ip, port string, timeout time.Duration, servername string) (TLS, error) {
switch version {
case "ssl30":
r, err := ssl30.Handshake(network, ip, port, timeout)
return TLS(r), err
case "tls10":
r, err := tls10.Handshake(network, ip, port, timeout, servername)
return TLS(r), err
case "tls11":
r, err := tls11.Handshake(network, ip, port, timeout, servername)
return TLS(r), err
case "tls12":
r, err := tls12.Handshake(network, ip, port, timeout, servername)
return TLS(r), err
case "tls13":
r, err := tls13.Handshake(network, ip, port, timeout, servername)
return TLS(r), err
default:
return TLS{}, fmt.Errorf("invalid version: %s", version)
}
}
func Probe(version, network, ip, port string, timeout time.Duration, servername string) (bool, error) {
switch version {
case "ssl30":
r, err := ssl30.Probe(network, ip, port, timeout)
return r, err
case "tls10":
r, err := tls10.Probe(network, ip, port, timeout, servername)
return r, err
case "tls11":
r, err := tls11.Probe(network, ip, port, timeout, servername)
return r, err
case "tls12":
r, err := tls12.Probe(network, ip, port, timeout, servername)
return r, err
case "tls13":
r, err := tls13.Probe(network, ip, port, timeout, servername)
return r, err
default:
return false, fmt.Errorf("invalid version: %s", version)
}
}